Period
to 20 March 2019

The following table provides summary statistics for contract job vacancies with a requirement for PCI DSS skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited PCI DSS over the 6 months to 20 March 2019 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

Payment Card Industry Data Security Standard (PCI DSS)
UK
6 months to
20 Mar 2019
Same period 2018 Same period 2017
Rank 462 370 410
Rank change year-on-year -92 +40 -28
Contract jobs citing PCI DSS 463 662 535
As % of all contract IT jobs advertised in the UK 0.48% 0.66% 0.58%
As % of the Quality Assurance & Compliance category 4.53% 5.18% 4.95%
Number of daily rates quoted 299 404 354
UK median daily rate £513 £500 £475
Median daily rate % change year-on-year +2.50% +5.26% +5.56%
10th Percentile £363 £322 £358
90th Percentile £715 £663 £595
UK excluding London median daily rate £475 £425 £475
% change year-on-year +11.76% -10.53% +11.76%
Number of hourly rates quoted 2 4 0
UK median hourly rate £29.00 £52.50 -
Median hourly rate % change year-on-year -44.76% - -
UK excluding London median hourly rate £23.00 £45.00 -
% change year-on-year -48.89% - -

PCI DSS is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Contract vacancies with a requirement for quality assurance or compliance skills 10,228 12,772 10,818
As % of all contract IT jobs advertised in the UK 10.58% 12.65% 11.65%
Number of daily rates quoted 6,400 8,259 7,055
UK median daily rate £450 £445 £425
Median daily rate % change year-on-year +1.12% +4.71% +6.25%
10th Percentile £250 £256 £225
90th Percentile £638 £638 £625
UK excluding London median daily rate £420 £400 £400
% change year-on-year +5.00% - +6.67%
Number of hourly rates quoted 366 355 373
UK median hourly rate £21.76 £22.50 £20.00
Median hourly rate % change year-on-year -3.29% +12.50% -17.46%
10th Percentile £11.00 £12.21 £11.00
90th Percentile £48.75 £57.50 £53.75
UK excluding London median hourly rate £20.25 £25.00 £19.95
% change year-on-year -19.02% +25.31% -15.11%

PCI DSS
Job Vacancy Trend

Job postings citing PCI DSS as a percentage of all IT jobs advertised.

Job vacancy trend for PCI DSS in the UK

PCI DSS
Contractor Daily Rate Trend

This chart provides the 3-month moving average for daily rates quoted in contract jobs citing PCI DSS.

Contractor daily rate trend for PCI DSS in the UK

PCI DSS
Contractor Daily Rate Histogram

The daily rate distribution of IT jobs citing PCI DSS over the 6 months to 20 March 2019.

Contractor daily rate histogram for PCI DSS in the UK

PCI DSS
Contractor Hourly Rate Trend

This chart provides the 3-month moving average for contractor hourly rates quoted in IT jobs citing PCI DSS.

Contractor hourly rate trend for PCI DSS in the UK

PCI DSS
Contractor Hourly Rate Histogram

The hourly rate distribution of IT jobs citing PCI DSS over the 6 months to 20 March 2019.

Contractor hourly rate histogram for PCI DSS in the UK

PCI DSS
Top 15 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing PCI DSS within the UK over the 6 months to 20 March 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -78 444 £513 +2.50% 150
UK excluding London -55 274 £475 +11.76% 102
London -77 185 £600 +19.70% 53
South East +5 107 £500 - 27
North of England -55 50 £450 -5.26% 22
Midlands -5 43 £425 +6.25% 25
South West -22 40 £435 +6.10% 14
West Midlands -6 36 £425 +9.68% 19
Yorkshire -17 22 £400 -13.51% 7
East of England -13 20 £425 -12.60% 9
North West -19 19 £538 +7.50% 15
Wales -8 11 £498 -12.53%
North East +1 9 £500 -4.76%
Scotland +3 7 £600 +57.89% 5
East Midlands +10 6 £280 -37.78% 5

For the 6 months to 20 March 2019, IT contractor jobs citing PCI DSS also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for PCI DSS.

1 219 (47.30%) ISO/IEC 27001
2 167 (36.07%) Information Security
3 136 (29.37%) Amazon AWS
4 127 (27.43%) CISSP
5 121 (26.13%) GDPR
6 100 (21.60%) CISM
7 95 (20.52%) Finance
8 94 (20.30%) Cybersecurity
9 90 (19.44%) Firewall
9 90 (19.44%) Linux
9 90 (19.44%) SIEM
10 87 (18.79%) Security Architecture
11 85 (18.36%) Splunk
12 67 (14.47%) Microsoft Azure
13 66 (14.25%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
14 65 (14.04%) CISA
15 64 (13.82%) Security Operations
16 63 (13.61%) Windows
17 62 (13.39%) DevOps
18 61 (13.17%) Web Services
19 55 (11.88%) Risk Management
20 51 (11.02%) Qualys
20 51 (11.02%) TOGAF
21 50 (10.80%) Threat Management
22 48 (10.37%) Vulnerability Management
22 48 (10.37%) ITIL
23 47 (10.15%) VPN
23 47 (10.15%) Microsoft
23 47 (10.15%) Agile Software Development
24 45 (9.72%) Vulnerability Scanning

PCI DSS
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 12 (2.59%) IIS
2 10 (2.16%) Apache
3 6 (1.30%) SharePoint
4 5 (1.08%) Confluence
4 5 (1.08%) JBoss
4 5 (1.08%) MS Exchange
5 4 (0.86%) Tomcat
6 3 (0.65%) Exchange Server 2013
6 3 (0.65%) OpenStack
7 2 (0.43%) Oracle SOA Suite
8 1 (0.22%) CMS
8 1 (0.22%) Exchange Server 2003
8 1 (0.22%) Exchange Server 2010
Applications
1 7 (1.51%) Microsoft Office
2 4 (0.86%) Microsoft Excel
3 2 (0.43%) Microsoft Project
4 1 (0.22%) MS Visio
Business Applications
1 5 (1.08%) Payment Gateway
2 3 (0.65%) assyst
3 1 (0.22%) Dynamics CRM
3 1 (0.22%) Northgate Housing
3 1 (0.22%) Oracle Financials
Cloud Services
1 136 (29.37%) Amazon AWS
2 67 (14.47%) Microsoft Azure
3 32 (6.91%) Google Cloud Platform
4 17 (3.67%) Office 365
4 17 (3.67%) SaaS
4 17 (3.67%) Virtual Private Cloud
5 16 (3.46%) Sumo Logic
6 12 (2.59%) IaaS
7 11 (2.38%) PaaS
8 7 (1.51%) Serverless
9 5 (1.08%) AWS Lambda
10 3 (0.65%) Akamai
11 2 (0.43%) Apple Pay
11 2 (0.43%) Cloud Computing
12 1 (0.22%) Dynamics 365
12 1 (0.22%) GitHub
12 1 (0.22%) Mimecast
12 1 (0.22%) OpenShift
Communications & Networking
1 90 (19.44%) Firewall
2 47 (10.15%) VPN
3 35 (7.56%) WAN
4 34 (7.34%) Network Security
5 27 (5.83%) LAN
6 23 (4.97%) DNS
7 21 (4.54%) TCP/IP
8 19 (4.10%) Internet
9 15 (3.24%) WLAN
10 13 (2.81%) Intrusion Detection
11 12 (2.59%) HTTP
11 12 (2.59%) MPLS
12 10 (2.16%) Wi-Fi
13 9 (1.94%) Cisco ASA
14 8 (1.73%) NFC
14 8 (1.73%) VoIP
15 7 (1.51%) DHCP
15 7 (1.51%) SSH
16 6 (1.30%) IP Telephony
16 6 (1.30%) VLAN
Database & Business Intelligence
1 9 (1.94%) Oracle Database
2 8 (1.73%) SQL Server
3 7 (1.51%) MySQL
4 6 (1.30%) Relational Database
5 5 (1.08%) Big Data
6 4 (0.86%) MongoDB
6 4 (0.86%) Oracle Database 11g
7 3 (0.65%) DB2
7 3 (0.65%) NoSQL
7 3 (0.65%) RDBMS
8 2 (0.43%) Amazon RDS
8 2 (0.43%) Data Warehouse
8 2 (0.43%) Hadoop
8 2 (0.43%) Oracle Database 12c
8 2 (0.43%) Oracle Exadata
9 1 (0.22%) Data Lake
Development Applications
1 37 (7.99%) Git (software)
2 30 (6.48%) Jenkins
3 25 (5.40%) Sonatype Nexus
4 15 (3.24%) JIRA
5 13 (2.81%) Visual Studio
6 8 (1.73%) SonarQube
7 5 (1.08%) Visual Studio Team System
8 4 (0.86%) Burp Suite
8 4 (0.86%) sqlmap
8 4 (0.86%) Team Foundation Server
9 1 (0.22%) Artifactory
9 1 (0.22%) MSBuild
9 1 (0.22%) Vagrant
General
1 95 (20.52%) Finance
2 42 (9.07%) Retail
3 25 (5.40%) Legal
4 23 (4.97%) Banking
5 18 (3.89%) Telecoms
6 15 (3.24%) Law
7 13 (2.81%) Back Office
8 11 (2.38%) Financial Institution
9 7 (1.51%) Retail Banking
10 6 (1.30%) Marketing
11 4 (0.86%) Billing
11 4 (0.86%) Electronics
11 4 (0.86%) Games
11 4 (0.86%) Manufacturing
12 2 (0.43%) Investment Banking
12 2 (0.43%) Multimedia
12 2 (0.43%) Publishing
13 1 (0.22%) French Language
13 1 (0.22%) German Language
13 1 (0.22%) Italian Language
Job Titles
1 103 (22.25%) Architect
2 78 (16.85%) Consultant
3 63 (13.61%) Security Consultant
4 60 (12.96%) Security Architect
5 51 (11.02%) Analyst
6 48 (10.37%) Security Engineer
7 37 (7.99%) Security Analyst
8 25 (5.40%) Cloud Architect
9 23 (4.97%) Project Manager
10 21 (4.54%) Information Security Consultant
10 21 (4.54%) Security Specialist
11 19 (4.10%) Cloud Engineer
12 18 (3.89%) Security Manager
13 14 (3.02%) Business Analyst
13 14 (3.02%) Solutions Architect
14 12 (2.59%) Compliance Specialist
14 12 (2.59%) Developer
14 12 (2.59%) Technical Architect
15 11 (2.38%) Cybersecurity Consultant
15 11 (2.38%) Network Engineer
Libraries, Frameworks & Software Standards
1 61 (13.17%) Web Services
2 13 (2.81%) .NET
3 10 (2.16%) JSON
4 7 (1.51%) LDAP
5 6 (1.30%) jQuery
5 6 (1.30%) LAMP
5 6 (1.30%) Middleware
5 6 (1.30%) OAuth
5 6 (1.30%) RESTful
6 5 (1.08%) EDIFACT
6 5 (1.08%) Oracle GoldenGate
7 4 (0.86%) AngularJS
7 4 (0.86%) React
7 4 (0.86%) Spring
8 2 (0.43%) CSS
8 2 (0.43%) HTML
8 2 (0.43%) HTML5
8 2 (0.43%) OpenID
8 2 (0.43%) SOAP
8 2 (0.43%) XML
Miscellaneous
1 43 (9.29%) Management Information System
2 40 (8.64%) Data Centre
3 19 (4.10%) Analytical Skills
4 17 (3.67%) PKI
5 16 (3.46%) Cyberthreat
5 16 (3.46%) Distributed Denial-of-Service
6 11 (2.38%) Enterprise Cloud
7 10 (2.16%) Driving Licence
7 10 (2.16%) Greenfield Project
7 10 (2.16%) Mobile App
7 10 (2.16%) Public Cloud
7 10 (2.16%) Virtual Team
8 8 (1.73%) Data Protection Act
9 7 (1.51%) Fintech
9 7 (1.51%) Private Cloud
10 6 (1.30%) Security Operations Centre
10 6 (1.30%) Self-Motivation
10 6 (1.30%) User Experience
11 5 (1.08%) Clustering
11 5 (1.08%) FMCG
Operating Systems
1 90 (19.44%) Linux
2 63 (13.61%) Windows
3 36 (7.78%) Red Hat Enterprise Linux
4 25 (5.40%) Windows Server
5 18 (3.89%) Solaris
6 13 (2.81%) Unix
7 9 (1.94%) Android
8 7 (1.51%) Apple iOS
9 6 (1.30%) Windows Server 2012
10 3 (0.65%) Windows Server 2008
11 2 (0.43%) AIX
11 2 (0.43%) Windows 7
11 2 (0.43%) Windows Server 2003
12 1 (0.22%) Debian
12 1 (0.22%) Mac OS X
12 1 (0.22%) Ubuntu
12 1 (0.22%) VMS
12 1 (0.22%) Windows 10
Processes & Methodologies
1 167 (36.07%) Information Security
2 94 (20.30%) Cybersecurity
3 90 (19.44%) SIEM
4 87 (18.79%) Security Architecture
5 64 (13.82%) Security Operations
6 62 (13.39%) DevOps
7 55 (11.88%) Risk Management
8 51 (11.02%) TOGAF
9 50 (10.80%) Threat Management
10 48 (10.37%) ITIL
10 48 (10.37%) Vulnerability Management
11 47 (10.15%) Agile Software Development
12 45 (9.72%) Vulnerability Scanning
13 43 (9.29%) Data Protection
14 40 (8.64%) Stakeholder Management
15 37 (7.99%) Data Analysis
16 35 (7.56%) Change Management
16 35 (7.56%) Project Management
17 34 (7.34%) Data Security
18 33 (7.13%) Identity Access Management
Programming Languages
1 33 (7.13%) Java
2 31 (6.70%) C#
3 28 (6.05%) Python
4 19 (4.10%) SQL
5 17 (3.67%) PowerShell
6 14 (3.02%) Perl
7 12 (2.59%) Bash Shell
7 12 (2.59%) JavaScript
8 9 (1.94%) Ruby
9 7 (1.51%) PHP
10 6 (1.30%) Apple Swift
11 5 (1.08%) Go
12 4 (0.86%) Objective-C
13 2 (0.43%) C
13 2 (0.43%) Kotlin
Qualifications
1 127 (27.43%) CISSP
2 100 (21.60%) CISM
3 65 (14.04%) CISA
4 38 (8.21%) Security Cleared
5 35 (7.56%) AWS Certification
6 34 (7.34%) Degree
7 27 (5.83%) RHCE
8 26 (5.62%) SC Cleared
9 25 (5.40%) Cisco Certification
10 18 (3.89%) ISSAP
11 16 (3.46%) CSSLP
11 16 (3.46%) ISSMP
11 16 (3.46%) PCI QSA
12 14 (3.02%) (ISC)2 CCSP
13 11 (2.38%) CLAS
13 11 (2.38%) CRISC
14 10 (2.16%) IISP
14 10 (2.16%) TOGAF Certification
15 9 (1.94%) CCNP
16 8 (1.73%) CCSP
Quality Assurance & Compliance
1 219 (47.30%) ISO/IEC 27001
2 121 (26.13%) GDPR
3 66 (14.25%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
4 40 (8.64%) Sarbanes-Oxley
5 25 (5.40%) COBIT
6 18 (3.89%) HIPAA
7 16 (3.46%) Cyber Essentials
8 15 (3.24%) FedRAMP
9 14 (3.02%) QA
10 9 (1.94%) ISAE 3402
10 9 (1.94%) ISO 31000
10 9 (1.94%) ISO 9001
11 8 (1.73%) ISO 22301
11 8 (1.73%) ISO/IEC 27005
12 7 (1.51%) COSO
13 6 (1.30%) PA-DSS
13 6 (1.30%) PMO
14 3 (0.65%) PSD2
14 3 (0.65%) SLA
15 2 (0.43%) IASME
System Software
1 31 (6.70%) Active Directory
2 16 (3.46%) Docker
2 16 (3.46%) VMware Infrastructure
3 8 (1.73%) ISA Server
4 7 (1.51%) Hyper-V
5 5 (1.08%) Oracle RAC
6 2 (0.43%) Firmware
6 2 (0.43%) vSphere
7 1 (0.22%) KVM
7 1 (0.22%) Snort
7 1 (0.22%) Virtual Machines
7 1 (0.22%) VMware ESXi
Systems Management
1 42 (9.07%) Puppet
2 33 (7.13%) Ansible
3 32 (6.91%) Opscode Chef
4 30 (6.48%) SELinux
5 18 (3.89%) Kubernetes
6 15 (3.24%) Istio
7 14 (3.02%) Nessus
8 11 (2.38%) Suricata
9 8 (1.73%) Trend Micro Deep Security
10 5 (1.08%) Data Guard
10 5 (1.08%) Terraform
11 4 (0.86%) FortiGate
11 4 (0.86%) OSSEC
11 4 (0.86%) Red Hat Satellite
11 4 (0.86%) Single Sign-On
12 3 (0.65%) CASB
12 3 (0.65%) Mesos
12 3 (0.65%) Network Intrusion Detection System
12 3 (0.65%) Oracle Identity Management
12 3 (0.65%) Oracle RMAN
Vendors
1 85 (18.36%) Splunk
2 51 (11.02%) Qualys
3 47 (10.15%) Microsoft
4 36 (7.78%) Red Hat
5 33 (7.13%) Oracle
6 31 (6.70%) Google
7 27 (5.83%) Cisco
8 22 (4.75%) SAP
9 21 (4.54%) VMware
10 17 (3.67%) CyberArk
11 16 (3.46%) CheckPoint
11 16 (3.46%) Imperva
12 10 (2.16%) ArcSight
12 10 (2.16%) LogRhythm
12 10 (2.16%) McAfee
12 10 (2.16%) Tripwire
13 9 (1.94%) IBM
13 9 (1.94%) Juniper
14 8 (1.73%) Barracuda Networks
14 8 (1.73%) Trend Micro